rhadamanthys | 99a9de7fff6ab1dfbdba48c1b34ec8ae76d026fd8537e61d82272f0f41a9fc0c | Triage

Submit
Reports

Overview

overview

Static

static

1

dridex

windows10-2004-x64

Sharing

General

Target

99a9de7fff6ab1dfbdba48c1b34ec8ae76d026fd8537e61d82272f0f41a9fc0c
Size

342KB
Sample

230328-h6b3rabd3x
MD5

1f891e564214e00de244d744be5d0efd
SHA1

3239c3d31b194db2bb61dcc5787dcaeac7241465
SHA256

99a9de7fff6ab1dfbdba48c1b34ec8ae76d026fd8537e61d82272f0f41a9fc0c
SHA512

32de3fdaeace59f75f15e3ff8da1807272e38319d0856da1a98b437797c0d39e5221056752a60717c2bb9b53ffe9c988196e55f466a93dc3015a0e3ee3dab9f7
SSDEEP

3072:4QPQBoetAz5z/CtBr87vvCaVAUAjx8KTKJETrY5qFdMDYtmQPpoPDa5Bd4IfTIZB:5des5z6tB06Px8BtAtVpwTZB

Score

10^/10

rhadamanthys collection stealer

Static task

static1

Behavioral task

behavioral1

Sample

99a9de7fff6ab1dfbdba48c1b34ec8ae76d026fd8537e61d82272f0f41a9fc0c.exe

Resource

win10v2004-20230221-en

rhadamanthys collection stealer

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  99a9de7fff6ab1dfbdba48c1b34ec8ae76d026fd8537e61d82272f0f41a9fc0c
- Size
  
  342KB
- MD5
  
  1f891e564214e00de244d744be5d0efd
- SHA1
  
  3239c3d31b194db2bb61dcc5787dcaeac7241465
- SHA256
  
  99a9de7fff6ab1dfbdba48c1b34ec8ae76d026fd8537e61d82272f0f41a9fc0c
- SHA512
  
  32de3fdaeace59f75f15e3ff8da1807272e38319d0856da1a98b437797c0d39e5221056752a60717c2bb9b53ffe9c988196e55f466a93dc3015a0e3ee3dab9f7
- SSDEEP
  
  3072:4QPQBoetAz5z/CtBr87vvCaVAUAjx8KTKJETrY5qFdMDYtmQPpoPDa5Bd4IfTIZB:5des5z6tB06Px8BtAtVpwTZB
Score

10^/10

rhadamanthys collection stealer
- Detect rhadamanthys stealer shellcode
- Rhadamanthys
  Rhadamanthys is an info stealer written in C++ first seen in August 2022.
  stealer rhadamanthys
- Accesses Microsoft Outlook profiles
  collection
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Email Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

rhadamanthyscollectionstealer

© 2018-2024

Terms | Privacy